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AMENDMENTS 

In the Claims: 

This listing of claims will replace all prior versions or listings of claims for this application. 



1-8. (Cancelled). 



9. (Currently amended) A method for selecting a digital object in a database, the method 
comprising: 

generating a plurality of encryption keys, each encryption key associated with one of a 
plurality of digital objects stored in an electronic database; 

encrypting the plurality of digital objects using the associated encryption keys; 

encrypting the plurality of encryption keys using a first cryptography sch e me by the 
database ; 

transmitting to a requester the plurality of encrypted digital objects and encryption keys; 

receiving from the requester at least one of the encryption keys, wherein the received 
encryption key has been furth e r e ncrypt e d using a s e cond cryptography scheme re-encrypted by the 
requester prior to transmission ; 

generating a partially decrypted encryption key at the database by decrypting the received 
encryption key using th e first cryptography sch e m e; and 

transmitting the partially decrypted encryption key to the requester. 



10. (Previously Presented) The method of claim 9, further comprising encrypting the 
plurality of encryption keys by determining (encryption key) (random number R) mod (prime number p) 
for each key. 
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1 1 . (Currently amended) The method of claim 9, further comprising decrypting the received 
encryption key by determining ( e ncryption k e y) 0 *""*"" numb o r R > mod k nm e numb e r p 'Vod (prim e 
mmbe^B) (encryption kev) (1/(random numbcr R) mod number p) ~ l) mod (prime number v) . 

12. (Previously presented) The method of claim 10, further comprising performing the 
modulo operation if computation of a discrete logarithm is not possible. 

13. (Currently amended) A method for selecting a digital object in a database, the method 
comprising: 

requesting a plurality of digital objects from an electronic database; 

receiving from the database the requested plurality of digital objects, wherein each digital 
object has been encrypted using an associated encryption key; 

receiving from the database the plurality of keys associated with the plurality of digital 
objects wherein each key has been encrypted using a first cryptography sch e m e by the database ; 

selecting a ciphertext key from the plurality of received keys; 

further e ncrypting re-encrypting the selected key using a s e cond cryptography sch e m e; 
transmitting the key to the database; 

receiving from the database the key wherein the key has been partially decrypted using th e 
first cryptography sch e m e by the database ; 

decrypting the partially decrypted key using the s e cond cryptography sch e m e to generate a 
decrypted key; and 

decrypting the received digital object using the decrypted key. 
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14. (Previously Presented) The method of claim 13, further comprising encrypting the 
plurality of encryption keys by determining (encryption k e y)( randomnumberR ) mo d (prime number p) 
for each key. 

15. (Currently amended) The method of claim 13, further comprising decrypting the 
received encryption key by determining ( e ncryption koy) (1/(random numb o r R) mod (prim0 numb o r p 1)} mod 
(prime numb e r (encryption kev) (1/(random numbcr R) mod ^ numbcr p) ' l) mod (prime number p) . 



16. (Previously presented) The method of claim 14, further comprising performing the 
modulo operation if computation of a discrete logarithm is not possible. 

17. (Currently amended) A system for selecting a digital object in a database, the system 
comprising a processor for: 

generating a plurality of encryption keys, each encryption key associated with one of a 
plurality of digital objects stored in an electronic database; 

encrypting the plurality of digital objects using the associated encryption keys; 

encrypting the plurality of encryption keys using a first cryptography sch e m e by the 
database ; 

transmitting to a requester the plurality of encrypted digital objects and encryption keys; 

receiving from the requester at least one of the encryption keys, wherein the received 
encryption key has been furth e r e ncrypt e d using a s e cond cryptography sch e m e re-encrypted ; 

generating a partially decrypted encryption key at the database by decrypting the received 
encryption key using th e first cryptography sch e m e; and 

transmitting the partially decrypted encryption key to the requester. 
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18. (Previously Presented) The system of claim 17, wherein the processor is further 
configured or arranged for encrypting the plurality of encryption keys by determining (encryption 

key) (random number R) m()d number p) for each key 

19. (Currently amended) The system of claim 17, wherein the processor is further configured 
or arranged for decrypting the received encryption key by determining ( e ncryption k e y) (1/(random 

numb e r R) mod (prim e number p 1)) mQd rprimo numb e r p) (encryption kev) (1/(m<to R) m0d ^ P> "° 

mod ( prime number p) . 



20. (Previously presented) The system of claim 18, wherein the processor is further 
configured or arranged for performing the modulo operation if computation of a discrete logarithm 
is not possible. 



21. (Currently amended) A system for selecting a digital object in a database, the system 
comprising a processor for: 

requesting a plurality of digital objects from an electronic database; 

receiving from the database the requested plurality of digital objects, wherein each digital 
object has been encrypted using an associated encryption key; 

receiving from the database the plurality of keys associated with the plurality of digital 
objects wherein each key has been encrypted using a first cryptography sch e m e by the database ; 

selecting a ciphertext key from the plurality of received keys; 

furth e r e ncrypting re-encrypting the selected key using a s e cond cryptography sch e m e; 
transmitting the further key to the database; 

receiving from the database the key wherein the key has been partially decrypted u s ing th e 
first cryptography sch e m e by the database ; 
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decrypting the partially decrypted key using th e s e cond cryptography sch e m e to generate a 
decrypted key; and 

decrypting the received digital object using the decrypted key. 

22. (Previously Presented) The system of claim 21, wherein the processor is further 
configured or arranged for encrypting the plurality of encryption keys by determining (encryption 

key) (random number R) mQd p) fof ^ Rey 

23. (Currently amended) The system of claim 21, wherein the processor is further configured 
or arranged for decrypting the received encryption key by determining ( e ncryption i c e y) ( 1/ ( random 

number R) mod (prim e numb o r p 1)) mod (pdm e numb e r p) (encryption kev) (1/(nmdom numbCT R) ^ ^ P> ' 1} 

mod (prime number p) . 



24. (Previously presented) The system of claim 22, wherein the processor is further 
configured or arranged for performing the modulo operation if computation of a discrete logarithm 
is not possible. 

25. (Currently amended) A machine-readable medium having program code stored thereon 
which, when executed by a machine, causes the machine to perform a method for selecting a digital 
object in a database, the method comprising: 

generating a plurality of encryption keys, each encryption key associated with one of a 
plurality of digital objects stored in an electronic database; 

encrypting the plurality of digital objects using the associated encryption keys; 

encrypting the plurality of encryption keys by the database using a first cryptography 
sch e me ; 
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transmitting to a requester the plurality of encrypted digital objects and encryption keys; 

receiving from the requester at least one of the encryption keys, wherein the received 
encryption key has been furth e r e ncrypt e d using a s e cond cryptography sch e m e re-encrypted by the 
requester ; 

generating a partially decrypted encryption key at the database by decrypting the received 
encryption key using th e first cryptography sch e m e; and 

transmitting the partially decrypted encryption key to the requester. 



26. (Previously Presented) The machine-readable medium of claim 25, wherein the method 
further comprises encrypting the plurality of encryption keys by determining (encryption key) (random 
number R) mQC j ^ rimQ num ber p) for each key. 

27. (Currently amended) The machine-readable medium of claim 25, wherein the method 
further comprises decrypting the received encryption key by determining (encryption k e y) (1/(random 

number R) mod (prime number p 1)) mQd rprimo numbor p) (encryption kev) (1/( ™ d ° m R) m ° d (P " me """^ P) "° 

mod (prime number p) . 

28. (Previously presented) The machine-readable medium of claim 26, wherein the modulo 
operation is performed if computation of a discrete logarithm is not possible. 

29. (Currently amended) A machine-readable medium having program code stored thereon 
which, when executed by a machine, causes the machine to perform a method for selecting a digital 
object in a database, the method comprising: 

requesting a plurality of digital objects from an electronic database; 
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receiving from the database the requested plurality of digital objects, wherein each digital 
object has been encrypted using an associated encryption key; 

receiving from the database the plurality of keys associated with the plurality of digital 
objects wherein each key has been encrypted using a first cryptography sch e m e by the database ; 

selecting a ciphertext key from the plurality of received keys; 

furth e r e ncrypting re-encrypting the selected key using a s e cond cryptography schem e; 
transmitting the further key to the database; 

receiving from the database the key wherein the key has been partially decrypted using th e 
first cryptography sch e m e; 

decrypting the partially decrypted key using th e s e cond cryptography sch e m e to generate a 
decrypted key; and 

decrypting the received digital object using the decrypted key. 



30. (Previously Presented) The machine-readable medium of claim 29, wherein the method 
further comprises encrypting the plurality of encryption keys by determining (encryption key) (random 
number r) moc j (p r i me num ber p) for each key. 

31. (Currently amended) The machine-readable medium of claim 29, wherein the method 
further comprises decrypting the received encryption key by determining ( e ncryption k e y) (1/(random 

numb e r R) mod (prim e numb e r p 1)) mQd rprim e numb e r ^ (encryption kev) 0 ^ 0 " numbcr R) ^ ^ P) " 1} 

mod (prime number p) . 



32. (Previously presented) The machine-readable medium of claim 27, wherein the method 
further comprises performing the modulo operation if computation of a discrete logarithm is not 
possible. 

8 

va-165389 



